WechatSync

The skill is a wrapper for the open-source 'WechatSync' tool, designed to synchronize and cross-post articles to multiple content platforms (e.g., Zhihu, Juejin, CSDN). It relies on a legitimate npm package (@wechatsync/cli) and a browser extension, using a local-only security model where communication occurs over localhost via a user-generated WECHATSYNC_TOKEN. No evidence of malicious intent, data exfiltration, or harmful prompt injection was found in the SKILL.md or metadata.